38f9c767d68726dadd374137dab43167_JaffaCakes118

General

Target

38f9c767d68726dadd374137dab43167_JaffaCakes118
Size

188KB
MD5

38f9c767d68726dadd374137dab43167
SHA1

e501804fd7fc92e9c9bbc76c68beabf5eae31c18
SHA256

db435f357bcbc6eb1721e99a8676889492a1b889b0a875fe733c01cf3860a862
SHA512

808ff485c133756e08ff04df32b6942cfea8d934bfc922a38790da28fb60ba5d81e87e8354a29cbb88966c62299684f9323e7b85505cff7aec3118e45e7fb13b
SSDEEP

3072:aCOj22kkJaTif3X/++MG9Fu1Zl2G6ZEzjm8RiaAR8UexogRntMx5BH:TOHkkETE3X/++M9l23eS8FoInI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38f9c767d68726dadd374137dab43167_JaffaCakes118

Files

38f9c767d68726dadd374137dab43167_JaffaCakes118
.exe windows:4 windows x86 arch:x86

277f015d31783acdd9b882792346a42c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
GetACP
VirtualAlloc
GetLastError
lstrlenA
IsBadHugeReadPtr
LoadLibraryA
GetModuleHandleA
ExitProcess
GetCommandLineW
GetProcAddress
LoadLibraryExA
GetModuleHandleW
lstrlenW

user32

GetSysColor
InvalidateRect
GetWindow
IsWindowEnabled
GetWindowTextA
KillTimer
GetSubMenu
GetWindowLongA
IsChild
InsertMenuItemA
GetSysColorBrush
IsDialogMessageW
GetTopWindow
GetWindowLongW
IsDialogMessageA
IsZoomed
GetSystemMenu
InsertMenuA
GetWindowPlacement
IsRectEmpty
GetWindowRect
IsWindowVisible
IsIconic
InflateRect
GetWindowThreadProcessId
IsWindowUnicode
IntersectRect
GetWindowDC
GetScrollRange
IsWindow

comctl32

ImageList_Add
ImageList_Create
ImageList_Remove
ImageList_Read
ImageList_Destroy
ImageList_DragShowNolock

Sections

CODE
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 7KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

277f015d31783acdd9b882792346a42c

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Sections

CODE Size: 52KB - Virtual size: 52KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 116KB - Virtual size: 116KB

.hdata Size: 1024B - Virtual size: 832B

DATA Size: 7KB - Virtual size: 99KB

.bdata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 836B

CODE
Size: 52KB - Virtual size: 52KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 116KB - Virtual size: 116KB

.hdata
Size: 1024B - Virtual size: 832B

DATA
Size: 7KB - Virtual size: 99KB

.bdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 836B